Senior Security Consultant

PGI is a global consultancy that helps organisations build digital resilience. We deploy our people to implement solutions on behalf of clients or to support them in developing their own capabilities.

Our consultants help clients to ensure the confidentiality, integrity, and availability of their organisation's data and information. As well as implementing technical controls, we recommend processes and procedures, which have an equally important role in limiting risk. We support our clients to achieve and maintain information security standards and frameworks, including ISO 27001, PCI DSS, NIST Cyber Security Framework (CSF), and data protection regulations.

• Engaging confidently with clients and colleagues, delivering consultative and advisory expertise, within a pre-sales and delivery capacity.
• Providing hands‑on PCI DSS compliance and consultancy services across a range of requirements for clients.
• Operating as a subject matter expert and engaging confidently with clients relating to solving Information Security Governance, Risk, and Compliance problems.
• Supporting the growth of PGI’s consultancy services in the UK and internationally in line with industry and globally recognised standards.
• Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations.
• Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices.

• Proven people and relationship management skills.
• Demonstrable experience providing Information Assurance consultancy.
• Experience as a current Qualified Security Assessor (QSA).
• PCI SSC Qualified Security Assessor expertise and experience.
• Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR / DPA.
• ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Cloud Security or business continuity accreditations are highly desirable.
• CISM or CISA qualifications are highly desirable.
• Experience in conducting risk assessments and forming risk management policies.
• Experience in assessing an organisation’s cyber security maturity as well as remediation strategies.
• Excellent verbal and written communication skills, with the ability to present to clients and senior business stakeholders.
• A positive approach to problem‑solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines.

Examples of competencies we seek from candidates applying for this role include :

• Engage directly with clients, external parties, and third parties; build relationships.
• Explain legal aspects relevant to the role and know when to escalatethe issues.
• Plan, quote, and write proposals for simple client engagements and projects.
• Deliver projects on time, on budget, and monitor gross profit margins.
• Ensure quality control of all work, including third‑party contributions, before submission.
• Collaborate effectively and set clear expectations for colleagues and external partners.
• Hire, mentor, and develop junior team members.
• Write business cases and learning / development plans for direct reports.
• Delegate responsibilities and communicate plans clearly during absences.
• Support colleagues’ career development and take up growth opportunities.
• Self‑assess performance against core behaviours, competencies, and skills.
• Prioritise and manage workloads effectively; work independently and use initiative.
• Resolve external‑facing problems professionally and escalat when needed.
• Review and provide feedback of third‑party delivery quality and performance.

As a British company which operates internationally, we draw strength from the diversity of our people. Without our diverse team, we couldn’t do the work we do. We are involved in projects across 80+ geographies, our people speak 25+ languages and come from a variety of backgrounds. By hiring and cultivating a diverse, equitable and inclusive workforce, we can uphold values that enable every member of the team to thrive, while delivering novel solutions to novel problems.

Every individual has different requirements, so we are committed to implementing reasonable adjustments to mitigate physical and non‑physical barriers in the workplace. We strive to make the recruitment process as accessible as possible, but if you have any questions or concerns, please get in touch.

Please note : We are not accepting applications or speculative profiles from any recruitment agencies. If we require additional resource, we will reach out to you.